What is AI Security for Apps?
Cloudflare's AI Security for Apps is a new security offering designed to protect AI-powered applications and agents from emerging threats. Unlike traditional web applications with predictable operations, AI applications accept natural language inputs and generate unpredictable outputs, creating a new attack surface. The service sits in front of your AI-powered applications as part of Cloudflare's reverse proxy infrastructure and helps you discover, detect, and mitigate threats.
Three Core Capabilities
Discovery (Now Free): The platform automatically identifies LLM-powered endpoints across your web properties, regardless of where they're hosted or which model is in use. This capability is now free for all Cloudflare customers—including Free, Pro, and Business plans. Rather than matching path patterns, the detection system analyzes endpoint behavior to identify AI-powered applications like product search, valuation tools, and recommendation engines. Discovered endpoints appear in the Security dashboard labeled as cf-llm.
Detection: AI Security for Apps runs every prompt through multiple detection modules, including prompt injection, PII exposure, and sensitive or toxic topic detection. Detection metadata is attached to traffic and can be used in custom WAF rules to enforce your policies. Cloudflare plans to leverage its global network (which sees roughly 20% of web traffic) to identify attack patterns before they reach your applications.
Mitigation: Threats are mitigated using Cloudflare's familiar WAF rule builder, allowing you to log, block, or handle suspicious requests according to your security policies.
New Custom Topics Detection
Shipping with GA is custom topics detection, allowing you to define organization-specific threat categories. Financial services companies can detect discussions of specific securities, healthcare organizations can flag patient data conversations, and retailers can monitor competitor product inquiries. You specify the topic and receive a relevance score for decision-making.
Strategic Partnerships
Cloudflare announced an expanded collaboration with IBM, which has chosen Cloudflare to deliver AI security to its cloud customers. The company is also partnering with Wiz to give mutual customers a unified view of their AI security posture.
Getting Started
Customers on Free plans can initiate endpoint discovery by navigating to the Discovery page in their dashboard. Paid plan customers have discovery enabled automatically in the background on a recurring basis. Once endpoints are discovered, you can review them immediately and apply detection rules.